SSH proxy + governance: ShellClass, ceremony, breach, delegation (Rust)

Tyler J King aa447f151e feat(bascule-core): add DelegationScope for Infrastructure shell pattern ... DelegationScope is orthogonal to ShellClass — an Application session can have delegation authority to orchestrate System operations on remote targets (the Infrastructure shell pattern for Ansible/Terraform). TargetSelector supports: None, Hosts (explicit list), LabelSelector (deferred to K8s API), TrustDomain (all hosts). Default: denied (fail-closed). DelegationDecision: Permitted, Denied (with reason), Deferred (for async label resolution). Added delegation field to SessionScope with #[serde(default)] for backward-compatible deserialization. 7 unit tests for delegation scope checking. Signed-off-by: Tyler King <tking@guildhouse.dev> Signed-off-by: Tyler J King <tking727@gmail.com>		2026-04-15 15:16:24 -04:00
bascule-agent	feat(bascule-agent): replace soft-mode attestation with ConfigMap posture reader	2026-04-15 10:17:00 -04:00
bascule-core	feat(bascule-core): add DelegationScope for Infrastructure shell pattern	2026-04-15 15:16:24 -04:00
bascule-filter-core	initial: bascule v0.1.0	2026-03-18 16:40:48 -04:00
bascule-gateway	feat(gateway): session downgrade on posture breach	2026-04-15 15:16:11 -04:00
bascule-node-agent	initial: bascule v0.1.0	2026-03-18 16:40:48 -04:00
bascule-proto	initial: bascule v0.1.0	2026-03-18 16:40:48 -04:00
bascule-shell	initial: bascule v0.1.0	2026-03-18 16:40:48 -04:00
bascule-tail	initial: bascule v0.1.0	2026-03-18 16:40:48 -04:00
ceremony-engine	refactor(ceremony-engine): use GovernanceEnvelope for merkle leaves	2026-04-12 12:13:53 -04:00
proto/bascule/v1	initial: bascule v0.1.0	2026-03-18 16:40:48 -04:00
.gitignore	initial: bascule v0.1.0	2026-03-18 16:40:48 -04:00
Cargo.lock	feat(bascule-core): add ShellClass enum with posture-based derivation	2026-04-15 10:36:45 -04:00
Cargo.toml	initial: bascule v0.1.0	2026-03-18 16:40:48 -04:00